$OpenBSD: patch-src_http_ngx_http_spdy_c,v 1.2 2014/05/20 10:17:02 sthen Exp $

Fix for CVE-2014-0133, http://nginx.org/download/patch.2014.spdy2.txt

--- src/http/ngx_http_spdy.c.orig	Tue Nov 19 05:03:48 2013
+++ src/http/ngx_http_spdy.c	Fri Mar 21 22:11:30 2014
@@ -1478,7 +1478,7 @@ static u_char *
 ngx_http_spdy_state_save(ngx_http_spdy_connection_t *sc,
     u_char *pos, u_char *end, ngx_http_spdy_handler_pt handler)
 {
-#if (NGX_DEBUG)
+#if 1
     if (end - pos > NGX_SPDY_STATE_BUFFER_SIZE) {
         ngx_log_error(NGX_LOG_ALERT, sc->connection->log, 0,
                       "spdy state buffer overflow: "
